Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5.7 and earlier allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) the title and description parameters to the com_weblinks module and (2) unspecified vectors in the com_content module related to "article submission."
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2009-02-26 16:17
Updated : 2024-02-04 17:33
NVD link : CVE-2008-6299
Mitre link : CVE-2008-6299
CVE.ORG link : CVE-2008-6299
JSON object : View
Products Affected
joomla
- joomla
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')